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DETAILED ACTION 

1 . Claims 1 -24 have been examined. 

Claim Rejections - 35 USC §103 

2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

3. Claims 1-3, 8-10 and 22-28 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Cassagnol et al. U.S. Pub. No. 20020129245 (hereinafter Cassagnol) in view of Audebert et 
al. U.S. Pub. No. 20030108204 (hereinafter Audebert) 

4. As per claim 1, Cassagnol discloses a method comprising: 

receiving, in a secure environment in a terminal, first key for decrypting said encrypted 
application (Cassagnol: [0012]: use first key to decrypt encrypted data); 

decrypting, in the secure environment, said encrypted application (204) by means of said 
first key (Cassagnol: [0025]: decrypt with first whitening key); 

re-encrypting, in said secure environment, the application by means of a second key 
(Cassagnol: [0025]: re-encrypt data with second whitening key); and 

storing, outside said secure environment, the re-encrypted application (Cassagnol: 
[0043]: the re-encrypted information is stored externally). 
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Cassagnol does not clearly disclose the first key is received via a secure channel from a 
server outside said terminal. However, Audebert discloses an access server that initially generate 
a master key and load the key into a personal security device over a secure channel (Audebert: 
figure 5 and [0041]-[0043]). It would have been obvious to one having ordinary skill in the art to 
securely load communication key into a secure environment by a cryptographic system provider 
because both prior art disclose method of protecting communication data in a distributed 
network. Therefore, it would have been obvious o one having ordinary skill in the art at the time 
of applicant's invention to combine the teachings of Audebert within the system of Cassagnol 
because it allows keys to be updated by cryptographic providers. 

5. As per claim 2, Cassagnol as modified discloses a method comprising: 

receiving an encrypted application in a terminal (Cassagnol: [001 1]: receive encrypted 
information); 

receiving, in a secure environment in said terminal, via a secure channel, from a server 
outside said terminal, a first key for decrypting said encrypted application (Cassagnol: [0111]- 
[0112]: receiving key from key server through secure channel); 

encrypting, in said secure environment, said first key by means of a second key 
(Cassagnol: [0058] and [0061]-[0062]: the encrypted master key/encrypted first key can be 
decrypted using device key/second key); and 

storing, outside said secure environment, the encrypted first key (Cassagnol: [0058]: the 
whitening keys are stored outside of the secure environment). 
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6. As per claim 3, Cassagnol as modified discloses the method according to claim 1 . 
Cassagnol further discloses encrypting, in said secure environment (205), said first key by means 
of the second key; and storing, outside said secure environment (205), the encrypted first key 
(Cassagnol: [0058]: keys are encrypted and stored externally). 

7. As per claim 8, Cassagnol discloses an apparatus comprising: 

an application including an installation part for receiving, a first key for decrypting said 
encrypted application (Cassagnol: [011 1]-[01 12]: receiving key from key server through secure 
channel); 

a processor for decrypting, in the secure environment, said encrypted application (204) by 
means of said first key (Cassagnol: [0025]: decrypt with first whitening key); 

said processor for re-encrypting, in said secure environment, the application by means of 
a second key (Cassagnol: [0025]: re-encrypt data with second whitening key); and 

memory for storing, outside said secure environment, the re-encrypted application 
(Cassagnol: [0043]: the re-encrypted information is stored externally). 

Cassagnol does not clearly disclose the first key is received via a secure channel from a 
server outside said terminal. However, Audebert discloses an access server that initially generate 
a master key and load the key into a personal security device over a secure channel (Audebert: 
figure 5 and [0041]-[0043]). It would have been obvious to one having ordinary skill in the art to 
securely load communication key into a secure environment by a cryptographic system provider 
because both prior art disclose method of protecting communication data in a distributed 
network. Therefore, it would have been obvious o one having ordinary skill in the art at the time 
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of applicant's invention to combine the teachings of Audebert within the system of Cassagnol 
because it allows keys to be updated by cryptographic providers. 

8. As per claim 9, Cassagnol as modified discloses an apparatus comprising: 

an application including an installation part for receiving, in a secure environment in said 
terminal, via a secure channel, from a server outside said terminal, a first key for decrypting said 
encrypted application (Cassagnol: [Oil 1]-[01 12]: receiving key from key server through secure 
channel); 

a processor for encrypting, in said secure environment, said first key by means of a 
second key (Cassagnol: [0058]: the encrypted key is stored externally); and 

said processor for storing, outside said secure environment, the encrypted first key 
(Cassagnol: [0058]). 

9. As per claim 10, Cassagnol as modified discloses the apparatus of claim 8. Cassagnol 
further discloses wherein said processor is: 

for encrypting, in said secure environment (205), said first key by means of the second 
key; and storing, outside said secure environment (205), the encrypted first key (Cassagnol: 
[0058]: keys are encrypted and stored externally). 

10. As per claim 22, Cassagnol discloses a terminal device comprising: 

an installation part of an application (Cassagnol: [0111]: receive the cryptographic key); 

and 
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a secure environment, responsive to said first key from said installation part of said 
application for decrypting an encrypted application in said terminal device using said first key 
received over said secure channel from said server external to said terminal device (Cassagnol: 
[01 1 1]-[01 12]: receiving key from key server thorough secure channel to decrypt data within 
secure environment). 

Cassagnol does not clearly disclose the first key is received via a secure channel from a 
server outside said terminal. However, Audebert discloses an access server that initially generate 
a master key and load the key into a personal security device over a secure channel (Audebert: 
figure 5 and [0041]-[0043]). It would have been obvious to one having ordinary skill in the art to 
securely load communication key into a secure environment by a cryptographic system provider 
because both prior art disclose method of protecting communication data in a distributed 
network. Therefore, it would have been obvious o one having ordinary skill in the art at the time 
of applicant's invention to combine the teachings of Audebert within the system of Cassagnol 
because it allows keys to be updated by cryptographic providers. 

11. As per claim 23, Cassagnol as modified discloses the terminal device of claim 22. 
Cassagnol further discloses wherein said first key is encrypted by said server using a second key 
belonging to said terminal device for providing said first key from said server to said terminal 
device (Cassagnol: [01 10]-[01 12]: data and key communication between the device and server 
are encrypted). 
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12. As per claim 24, Cassagnol discloses an integrated circuit for installation in a terminal 
comprising: 

a signal processor and a secure environment, said secure environment responsive to a first 
key for decrypting an encrypted application within said secure environment (Cassagnol: [0111]- 
[0112]: receiving key from key server through secure channel), for executing said decrypted 
application within said secure environment (Cassagnol: [0025]: decrypt with first whitening key) 
and for encrypting said first key with a second key belonging to said terminal device for storage 
outside said secure environment (Cassagnol: [0111]: communication between device and key 
server is encrypted with session kcy/sccond key) so that said first key can be used again with 
said secure environment without need for receipt again of said first key from said server 
(Cassagnol: [0112]: the server sends key material to the device/first key). 

Cassagnol does not clearly disclose the first key is received via a secure channel from a 
server outside said terminal. However, Audebert discloses an access server that initially generate 
a master key and load the key into a personal security device over a secure channel (Audebert: 
figure 5 and [0041]-[0043]). It would have been obvious to one having ordinary skill in the art to 
securely load communication key into a secure environment by a cryptographic system provider 
because both prior art disclose method of protecting communication data in a distributed 
network. Therefore, it would have been obvious o one having ordinary skill in the art at the time 
of applicant's invention to combine the teachings of Audebert within the system of Cassagnol 
because it allows keys to be updated by cryptographic providers. 
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13. As per claim 25, Cassagnol as modified discloses the method of claim 2. Cassagnol 
further discloses receiving another encrypted application in the terminal (Cassagnol: [0043]: 
handling the encrypted software within the secure environment); loading the encrypted first key 
from outside said secure environment (Cassagnol: [0058]: the key is imported externally for 
decryption); decrypting the encrypted first key with the second key (Cassagnol: [0061]: the 
master key is decrypted using device key); and decrypting the other encrypted application with 
the decrypted first key (Cassagnol: [0061]: the software master key is used to decrypt the 
application). 

14. As per claim 26, Cassagnol as modified discloses the method of claim 25. Cassagnol 
further discloses re-encrypting the first key by means of a second key (Cassagnol: [0062]: the 
EMK/first key is encrypted with device key/second key); and storing, outside said secure 
environment, the encrypted first key (Cassagnol: [0058]: the encrypted whitening key is typically 
stored outside the secure environment). 

15. As per claim 27, Cassagnol as modified discloses the apparatus of claim 9. Cassagnol 
further discloses wherein said installation part is for receiving another encrypted application in 
the terminal (Cassagnol: [0043]: handling the encrypted software within the secure 
environment); loading the encrypted first key from outside said secure environment (Cassagnol: 
[0058]: the key is imported externally for decryption); decrypting the encrypted first key with the 
second key (Cassagnol: [0061]: the master key is decrypted using device key); and decrypting 
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the other encrypted application with the decrypted first key (Cassagnol: [0061]: the software 
master key is used to decrypt the application). 



16. As per claim 28, Cassagnol as modified discloses the apparatus of claim 27. Cassagnol 
further discloses wherein said processor is further configured to: re-encrypting the first key by 
means of a second key (Cassagnol: [0062]: the EMK/first key is encrypted with device 
key/second key); and storing, outside said secure environment, the encrypted first key 
(Cassagnol: [0058]: the encrypted whitening key is typically stored outside the secure 
environment). 



Claim Rejections - 35 USC § 103 

17. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

18. Claims 4-6, 11-13, 15-17 and 19-20 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Cassagnol in view of Audebert and further in view of Matyas et al. U.S. Pat. 
No. 7051211 (hereinafter Matyas). 



19. As per claim 4, Cassagnol as modified discloses the method according to claim 1 . 
Cassagnol does not explicitly disclose wherein said second key is symmetric and can be derived 
from the application (202). However, Matyas discloses generating a new key for re-encrypting 
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protected software derived from the software (Matyas: column 10 lines 26-46: new key is 
generated from S and K and S is provided along with application). It would have been obvious to 
one having ordinary skill in the art to generate a new key based on information provided in the 
application because the derived information can be used as a seed in generating new key. 
Therefore, it would have been obvious to one having ordinary skill in the art at the time of 
applicant's invention to combine the teachings of Matyas within the system of Cassagnol 
because it prevents malicious from using the first key by generating a new key based on 
additional information. 

20. As per claim 5, Cassagnol as modified discloses the method according to claim 4. 
Cassagnol as modified further discloses wherein said second key is comprised in the application 
(202) itself (Matyas: column 10 lines 26-46). 

21 . As per claim 6, Cassagnol as modified discloses the method according to claim 4. 
Cassagnol as modified further discloses wherein said second key is generated in the secure 
environment (205) using an application seed (Cassagnol: [0025]: generating new key in the 
secure environment). 

22. As per claim 11, Cassagnol as modified discloses the apparatus according to claim 8. 
Cassagnol does not explicitly disclose wherein said second key is symmetric and can be derived 
from the application (202). However, Matyas discloses generating a new key for re-encrypting 
protected software derived from the software (Matyas: column 10 lines 26-46: new key is 
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generated from S and K and S is provided along with application). It would have been obvious to 
one having ordinary skill in the art to generate a new key based on information provided in the 
application because the derived information can be used as a seed in generating new key. 
Therefore, it would have been obvious to one having ordinary skill in the art at the time of 
applicant's invention to combine the teachings of Matyas within the system of Cassagnol 
because it prevents malicious from using the first key by generating a new key based on 
additional information. 

23. As per claim 12, Cassagnol as modified discloses the apparatus according to claim 11. 
Cassagnol as modified further discloses wherein said second key is comprised in the application 
(202) itself (Matyas: column 10 lines 26-46). 

24. As per claim 13, Cassagnol as modified discloses the apparatus according to claim 1 1 . 
Cassagnol as modified further discloses wherein said second key is generated in the secure 
environment (205) using an application seed (Cassagnol: [0025]: generating new key in the 
secure environment). 

25. As per claim 15, Cassagnol as modified discloses the method according to claim 2. 
Cassagnol does not explicitly disclose wherein said second key is symmetric and can be derived 
from the application (202). However, Matyas discloses generating a new key for re-encrypting 
protected software derived from the software (Matyas: column 10 lines 26-46: new key is 
generated from S and K and S is provided along with application). It would have been obvious to 
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one having ordinary skill in the art to generate a new key based on information provided in the 
application because the derived information can be used as a seed in generating new key. 
Therefore, it would have been obvious to one having ordinary skill in the art at the time of 
applicant's invention to combine the teachings of Matyas within the system of Cassagnol 
because it prevents malicious from using the first key by generating a new key based on 
additional information. 

26. As per claim 16, Cassagnol as modified discloses the method according to claim 15. 
Cassagnol as modified further discloses wherein said second key is comprised in the application 
(202) itself (Matyas: column 10 lines 26-46). 

27. As per claim 17, Cassagnol as modified discloses the method according to claim 15. 
Cassagnol as modified further discloses wherein said second key is generated in the secure 
environment (205) using an application seed (Cassagnol: [0025]: generating new key in the 
secure environment). 

28. As per claim 19, Cassagnol as modified discloses the method according to claim 9. 
Cassagnol does not explicitly disclose wherein said second key is symmetric and can be derived 
from the application (202). However, Matyas discloses generating a new key for re-encrypting 
protected software derived from the software (Matyas: column 10 lines 26-46: new key is 
generated from S and K and S is provided along with application). It would have been obvious to 
one having ordinary skill in the art to generate a new key based on information provided in the 
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application because the derived information can be used as a seed in generating new key. 
Therefore, it would have been obvious to one having ordinary skill in the art at the time of 
applicant's invention to combine the teachings of Matyas within the system of Cassagnol 
because it prevents malicious from using the first key by generating a new key based on 
additional information. 

29. As per claim 20, Cassagnol as modified discloses the method according to claim 19. 
Cassagnol as modified further discloses wherein said second key is comprised in the application 
(202) itself (Matyas: column 10 lines 26-46). 

30. Claims 7, 14, 1 8, 2 1 , and 29-32 are rejected under 35 U.S.C. 1 03(a) as being unpatentable 
over Cassagnol in view of Audebert and further in view of Takeuchi et al. U.S. Pat. No. 6647495 
(hereinafter Takeuchi). 

31. As per claim 7, Cassagnol as modified discloses the method of claim 1 . Cassagnol does 
not explicitly disclose wherein multiple keys can be transferred successively on the secure 
channel into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
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system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 

32. As per claim 14, Cassagnol as modified discloses the apparatus of claim 8. Cassagnol 
does not explicitly disclose wherein multiple keys can be transferred successively on the secure 
channel into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 

33. As per claim 18, Cassagnol as modified discloses the method of claim 2. Cassagnol does 
not explicitly disclose wherein multiple keys can be transferred successively on the secure 
channel into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
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system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 

34. As per claim 21, Cassagnol as modified discloses the method of claim 9. Cassagnol does 
not explicitly disclose wherein multiple keys can be transferred successively on the secure 
channel into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 

35. As per claim 29, Cassagnol as modified discloses the method of claim 7. Cassagnol as 
modified further disclose wherein said processor is further configured to: 

encrypting, in said secure environment, each of said multiple keys by means of the 
second key (Cassagnol: [0058] and [0061]-[0062]: the encrypted master key/encrypted first key 
can be decrypted using device key/second key); and 

storing, outside said secure environment, each of the multiple keys encrypted by the 
second key (Cassagnol: [0058]: the whitening keys are stored outside of the secure environment). 
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36. As per claim 30, Cassagnol as modified discloses the method of claim 29. Cassagnol as 
modified further discloses wherein said installation part is for receiving another encrypted 
application in the terminal (Cassagnol: [0043]: handling the encrypted software within the secure 
environment); loading the encrypted first key from outside said secure environment (Cassagnol: 
[0058]: the key is imported externally for decryption); decrypting the encrypted first key with the 
second key (Cassagnol: [0061]: the master key is decrypted using device key); and decrypting 
the other encrypted application with the decrypted first key (Cassagnol: [0061]: the software 
master key is used to decrypt the application). 

37. As per claim 3 1 , Cassagnol as modified discloses the apparatus of claim 14. Cassagnol as 
modified further disclose wherein said processor is further configured to: 

encrypting, in said secure environment, each of said multiple keys by means of the 
second key (Cassagnol: [0058] and [0061]-[0062]: the encrypted master key/encrypted first key 
can be decrypted using device key/second key); and 

storing, outside said secure environment, each of the multiple keys encrypted by the 
second key (Cassagnol: [0058]: the whitening keys are stored outside of the secure environment). 

38. As per claim 32, Cassagnol as modified discloses the method of claim 29. Cassagnol as 
modified further discloses wherein said installation part is for receiving another encrypted 
application in the terminal (Cassagnol: [0043]: handling the encrypted software within the secure 
environment); loading the encrypted first key from outside said secure environment (Cassagnol: 
[0058]: the key is imported externally for decryption); decrypting the encrypted first key with the 
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second key (Cassagnol: [0061]: the master key is decrypted using device key); and decrypting 
the other encrypted application with the decrypted first key (Cassagnol: [0061]: the software 
master key is used to decrypt the application). 

Response to Arguments 

39. Applicant's arguments with respect to claims 1-32 have been considered but are moot in 
view of the new ground(s) of rejection. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to SHIN-HON CHEN whose telephone number is (571)272-3789. 
The examiner can normally be reached on Monday through Friday 8:30am to 5:30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, William R. Korzuch can be reached on (571) 272-7589. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

Shin-Hon Chen 
Primary Examiner 
Art Unit 2431 
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Primary Examiner, Art Unit 243 1 



